ced8ab33c8bd833aaa23dbbf51782bb9ad2df6c19320ceb0bf5db49d0c4f149a

Sharing

Copy URL Twitter E-mail

General

Target

ced8ab33c8bd833aaa23dbbf51782bb9ad2df6c19320ceb0bf5db49d0c4f149a
Size

502KB
MD5

5e44344a18c17d08c3e88e0c2ca04d5d
SHA1

16c0a4c6d27df15080ae11bc5eaf3e00767b94fa
SHA256

ced8ab33c8bd833aaa23dbbf51782bb9ad2df6c19320ceb0bf5db49d0c4f149a
SHA512

f53b243870d8e6624348351f7e061e1dcacc24d16270fb7c786bf77b5b798e686d379f9020ae4e699b52bde8bf6a52f08204b4af676b7c984f6900f3a093a3b7
SSDEEP

12288:ecNSNAP/ofFvY/5O+Q2N/Ijgwj5s8TSE0GoiDrhAai:ByqofZY/5z5/IVTz07KVB

Score

N/A

Malware Config

Signatures

Files

ced8ab33c8bd833aaa23dbbf51782bb9ad2df6c19320ceb0bf5db49d0c4f149a
.exe windows x86

fbe1530838f657e722bb58a30462c1cc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

user32

SendMessageTimeoutA
RegisterClassA
DialogBoxParamA
wsprintfA
LoadMenuW
RegisterDeviceNotificationW
AnimateWindow
RegisterClassExA
GetSubMenu
SetCapture
SendMessageA

advapi32

CryptAcquireContextA
InitiateSystemShutdownA
LookupPrivilegeNameA
RegReplaceKeyA
GetUserNameA
RegCreateKeyExW
RegQueryValueW
CryptDuplicateKey
LookupSecurityDescriptorPartsW
StartServiceW
RegSaveKeyW
RegSetValueExA
CryptDeriveKey
CryptGetDefaultProviderW

kernel32

InterlockedExchangeAdd
FlushFileBuffers
TerminateProcess
GetEnvironmentStrings
TlsFree
WritePrivateProfileStructA
LCMapStringW
GetCurrentThreadId
SetFilePointer
GetFileAttributesW
GetConsoleOutputCP
HeapCreate
SetLastError
LCMapStringA
CompareStringW
GetCurrentThread
InitializeCriticalSection
UnmapViewOfFile
EnumResourceNamesA
TransmitCommChar
MapViewOfFile
WideCharToMultiByte
GetLastError
TlsSetValue
GetVersion
CloseHandle
SetConsoleActiveScreenBuffer
OpenMutexA
InterlockedIncrement
GetModuleFileNameA
GetLocalTime
HeapFree
GetTickCount
GetCommandLineW
GetPriorityClass
AddAtomA
GetEnvironmentStringsW
MultiByteToWideChar
HeapDestroy
GetStdHandle
LocalFileTimeToFileTime
SetHandleCount
CompareStringA
ExitProcess
SetEnvironmentVariableA
FreeEnvironmentStringsW
GetStringTypeW
WriteConsoleOutputAttribute
ReadFile
HeapReAlloc
UnhandledExceptionFilter
EnterCriticalSection
IsBadWritePtr
GetStartupInfoW
LockFileEx
HeapAlloc
WriteFile
InterlockedDecrement
LeaveCriticalSection
DeleteCriticalSection
CreateDirectoryA
TlsGetValue
RtlUnwind
GetTimeZoneInformation
GetModuleHandleA
GetStartupInfoA
SetStdHandle
GetCommandLineA
GetSystemTime
ReadConsoleOutputA
GetSystemTimeAsFileTime
EnumCalendarInfoW
FreeEnvironmentStringsA
GetPrivateProfileIntA
GetModuleFileNameW
GetCPInfo
VirtualAlloc
QueryPerformanceCounter
GetProcAddress
VirtualFree
LoadLibraryA
GetStringTypeA
GetCurrentProcessId
GetFileType
VirtualQuery
LoadLibraryExA
InterlockedExchange
GetCurrentProcess
TlsAlloc
CreateMutexA
SetLocalTime

Sections

.text
Size: 136KB - Virtual size: 136KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 354KB - Virtual size: 353KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fbe1530838f657e722bb58a30462c1cc

Headers

File Characteristics

Imports

comctl32

user32

advapi32

kernel32

Sections

.text Size: 136KB - Virtual size: 136KB

.rdata Size: 4KB - Virtual size: 33KB

.data Size: 354KB - Virtual size: 353KB

.rsrc Size: 6KB - Virtual size: 6KB

.text
Size: 136KB - Virtual size: 136KB

.rdata
Size: 4KB - Virtual size: 33KB

.data
Size: 354KB - Virtual size: 353KB

.rsrc
Size: 6KB - Virtual size: 6KB